Hi Azad , I think there is an anomaly in your understanding or description (IMHO ) or i did not understand the scenario correctly.
In a Business to consumer scenario ( most common use of PKI ) , the server will have a digital certificate ( public key/private key pair , private key will be saved on the server not part of certificate ) and User agent ( in my parlance it is our browser ) will request for secure communication at a specified port ( 443 in the case of TLS/SSL ) . Then server will give the certificate to the user agent and user agent will communicate to the CA to verify the authenticity . Once user agent has authenticated , the user agent will generate a session key (normally a symmetric key ) and will encrypt the session key with server's public key . In this case , server can get the key back by decrpyting with prviate key ( which is only available with server ). Thus PKI is used for key exchange . That means exchange of session key. In any scenario , it is like this. Can u give a detailed scenario to get help ? regards Praseed Pai --- On Mon, 1/3/11, AZAD NIKARTHIL <[email protected]> wrote: From: AZAD NIKARTHIL <[email protected]> Subject: [ILUG-Cochin.org] Regarding Public key Infrastructure (PKI) To: [email protected] Date: Monday, January 3, 2011, 11:55 PM Can any one help me, In normal situation, User-agent will have private key and public key, and it uses Certification Authority(CA) to Certificate its Public key. But here situation is like, User-agent doesn't have any private key and public key, but it ask Certification authority to Certificate. So Certification Authority will Generate Key pair(Private/public) with in CA. And send this public key to the User-Agent in the Certificate. But how this private key reaches User-agent ? Do any one know this............. Any Suggestions will be appreciatedEdit -----Inline Attachment Follows----- _______________________________________________ Indian Libre User Group Cochin Mailing List http://www.ilug-cochin.org/mailing-list/ http://mail.ilug-cochin.org/mailman/listinfo/mailinglist_ilug-cochin.org #[email protected]
_______________________________________________ Indian Libre User Group Cochin Mailing List http://www.ilug-cochin.org/mailing-list/ http://mail.ilug-cochin.org/mailman/listinfo/mailinglist_ilug-cochin.org #[email protected]
